Privacy Notice pursuant to European Regulation 2016/679 and applicable data protection laws

Purpose of this notice:

This page describes the methods of managing the website in relation to the processing of personal data of users who consult it. The data processing is always based on principles of lawfulness, fairness and transparency, in compliance with all applicable regulations (including the principles of necessity, correctness, lawfulness, transparency, and confidentiality) and carried out in ways strictly related to the purposes pursued.

The personal data collected will be processed by Ge.co. Pannelli S.r.l. (see below for more details) taking into account technological developments and adopting appropriate preventive security measures to minimize the risk of accidental data destruction or loss, unauthorized access or data processing that is unlawful or incompatible with the purposes for which the data was collected. Only the operations strictly necessary to achieve the purposes outlined in this document and in any other notices provided to users at the time of data collection will be carried out.

All processing will be conducted in compliance with current laws and in accordance with EU Regulation 2016/679.

The data may also be organized into databases, including digital databases.

This document also constitutes a privacy notice pursuant to Article 13 of EU Regulation 2016/679 provided to users interacting with the web services of this website for the protection of personal data.

The website concerned is https://gecopannelli.it which corresponds to the homepage of the site. This privacy notice applies only to the aforementioned website and not to any other websites that may be accessed by users via links. Those external sites operate as independent data controllers.

The server hosting the personal data related to the website is located at the Akamai Technologies data center in Germany.

In addition to the server location, data may be processed at the Company’s headquarters, at the premises of any appointed data processors (and by third parties to whom the data may be communicated as independent data controllers which are indicated in this policy or in specific privacy statements available on the site).

Please note that all data may also be processed as necessary in order to exercise or defense of the Company’s legal rights in the appropriate venues, as well as to comply with any legal, regulatory or EU obligations. In such cases, the provision of data is considered necessary and mandatory.

Provision of data

The failure to provide personal data will result in the impossibility to access the website and/or to establish any relationship with the Company (even simply by sending an email for information). For these purposes, data may be disclosed to judicial or law enforcement authorities, lawyers, and any other parties necessary to comply with legal obligations established by law, regulation, or EU legislation, or to assert or defend a right in the appropriate forums.

The data will be retained for these purposes for the period required by law.

Users are invited to consult all specific privacy notices that may be present in the various sections of the website.

Types of data processed and processing methods

Browsing data

The IT systems and software procedures supporting the operation of this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols.

This information is not collected to be associated with identified data subjects, but by its nature, it could, through processing and association with data held by third parties, allow users to be identified.

This data category includes IP addresses or domain names of the computers used by users who connect to the site, URI (Uniform Resource Identifier) addresses of requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the server’s response (successful, error, etc.), and other parameters related to the user’s operating system and IT environment.

This data is used by the Company solely to obtain anonymous statistical information on the use of the site and to verify its proper functioning and is deleted immediately after processing. The data could be used to ascertain liability in the event of hypothetical computer crimes against the site or the Company in general.

Processing methods

Data may be processed using paper, manual, computer, and telematic methods (thus the Company processes data on both paper and electronic media).

Providing such data is optional (except in cases where requested by judicial or law enforcement authorities, in which case it is mandatory); however, if the data is not provided, navigation of the site will not be possible.

Cookies

Please refer to the dedicated Cookie Policy page.

Data voluntarily provided by users

For specific submissions for which there are dedicated forms, please refer to those forms and specific notices.

Sending emails to the addresses indicated on this site (when only an email address is given and no dedicated form, in which case the specific notices governing the data submission in the forms apply) will result in the Company acquiring the sender’s address needed to respond, as well as any other personal data included in the message (and attachments) or forms.

In this case (i.e. where only the address is provided without a dedicated form in which last case specific appointing notices will apply), data submission is optional, but failure to provide the address or other necessary data will make it impossible to fulfill the request. By sending the email, the data subject explicitly consents to the processing of data to fulfill the request.

If material delivery is requested, data necessary for delivery may be communicated to postal or courier services.

Data, whether in paper or electronic format, may be processed manually or by IT/telematic tools, also organizing data in electronic databases.

Data controller

The data controller is: GE.CO. PANNELLI S.r.l. Via Isonzo 40/42, 33076 Pravisdomini (PN), ITALY Tel. +39 0434 644997 Fax +39 0434 645790 E-mail: info@gecopannelli.it.

Rights

We inform you that the GDPR provides the data subject the possibility to request from the Company (using the contact details provided above) access to personal data, correction of the data, deletion of the data or restriction of processing concerning the data subject, as well as data portability. The data subject also has the right, by contacting the Company, to object to the processing of personal data and to exercise the other rights provided in Chapter 3, Section 1 of the GDPR, including the right to withdraw consent where applicable. The withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.

Complaints

If you believe data processing violates GDPR provisions, you have the right to lodge a complaint with the Italian Data Protection Authority (whose contacts are at www.garanteprivacy.it) as per Article 77 of the GDPR, or to take appropriate legal action (Article 79 GDPR). You may also contact the supervisory authority of the country where you usually reside or work. The list is at www.garanteprivacy.it/home/footer/link.

Legal basis

The legal basis consists of legal obligations (Italian and EU laws), consent where required and the legitimate interests of the controller in relation to users (for purposes related to asserting or defending a right).

Legitimate interests have been assessed not to interfere with the data subject’s fundamental rights and freedoms (evaluated through a Triple Test available from the Company).

Scope of communication and disclosure

No data will be disseminated by the Company.

For specific processing related to forms or sections, see those forms and sections.

Otherwise, data provided by users may be known (and processed on behalf of the Company) by persons delegated by the Company (consultants, including external legal, IT, marketing, website managers, internal and external processors like site hosting companies) appointed according to law. The list is available by contacting the data controller.

If necessary and as specified above, data may be communicated to judicial or law enforcement authorities, lawyers, or anyone needed to comply with legal obligations, regulations or EU laws to assert or defend a right in the appropriate venues.

Voluntariness and processing methods

For full information on data processing by the Company, please consult all notices in the various areas of data collection and the full privacy policy sections.

Retention period

For browsing data and cookies, please refer to the relevant sections.

For data submitted through forms, refer to the respective sections.

Data necessary to respond to specific requests may be retained until fulfillment, except for further retention required by applicable Italian and EU laws:

– For legal obligations, regulations and EU laws, data may be retained for periods imposed by such laws;

– In any case, data may be retained as long as necessary to assert or defend a Company right under Italian and EU laws.

Specific notices

As mentioned, specific summaries are present in the website pages for particular requested services. These notices also supplement this policy.

Curriculum Vitae: If CVs are sent, they will be processed only for personnel selection (by HR staff) and will not be disclosed outside the Data Controller.

No special data (e.g., health, religious beliefs) are requested; if present, they will be processed only if necessary and allowed by law (e.g. protected categories).

CV data may be retained for one year unless a deletion request is made.

Policy updated on 12/05/2025. Previous versions are available by contacting the Company at the contacts listed in point 6.